Daily Threat Briefing – May 7, 2026

This briefing highlights multiple simultaneous, high-severity threats: a critical vm2 Node.js sandbox escape enabling remote code execution, an actively exploited Palo Alto Networks controller bug (CVE-2026-0300) causing DoS, a global supply-chain compromise of DAEMON Tools installers affecting millions, and state-sponsored campaigns including MuddyWater credential-harvesting via Microsoft Teams and Russian actors extracting Microsoft Office tokens through compromised routers; the report urges immediate patching, endpoint audits, and focused detection and containment measures.